HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Integration of Security Policy into System Modeling

Nazim Benaissa 1 Dominique Cansell 1, 2 Dominique Mery 1
1 MOSEL - Proof-oriented development of computer-based systems
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : We address the proof-based development of (system) models satisfying a security policy. The security policy is expressed in a model called OrBAC, which allows one to state permissions and prohibitions on actions and activities and belongs to the family of role-based access control formalisms. The main question is to validate the link between the security policy expressed in OrBAC and the resulting system; a first abstract B model is derived from the OrBAC specification of the security policy and then the model is refined to introduce properties that can be expressed in OrBAC. The refinement guarantees that the resulting B (system) model satisfies the security policy. We present a generic development of a system with respect to a security policy and it can be instantiated later for a given security policy.
Document type :
Conference papers
Complete list of metadata

Contributor : Nazim Benaissa Connect in order to contact the contributor
Submitted on : Friday, June 15, 2007 - 3:02:50 PM
Last modification on : Friday, February 4, 2022 - 3:31:14 AM


  • HAL Id : inria-00155143, version 1



Nazim Benaissa, Dominique Cansell, Dominique Mery. Integration of Security Policy into System Modeling. The 7th International B Conference - B2007, Jan 2007, Besançon, France. ⟨inria-00155143⟩



Record views